T. Hauck Jana Webserver 1.46 and previous versions allows a remote malicious user to view arbitrary files via a '..' (dot dot) attack which is URL encoded (%2e%2e).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
t. hauck jana web server 1.0j |
||
t. hauck jana web server 1.45 |
||
t. hauck jana web server 2.0_beta_1 |
||
t. hauck jana web server |